VYPR

rpm package

suse/openslp&distro=SUSE Linux Enterprise Server for SAP Applications 12 SP2

pkg:rpm/suse/openslp&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2012%20SP2

Vulnerabilities (3)

  • CVE-2017-17833CriApr 23, 2018
    affected < 2.0.0-18.15.1fixed 2.0.0-18.15.1

    OpenSLP releases in the 1.0.2 and 1.1.0 code streams have a heap-related memory corruption issue which may manifest itself as a denial-of-service or a remote code-execution vulnerability.

  • CVE-2016-4912HigMar 27, 2017
    affected < 2.0.0-18.2.1fixed 2.0.0-18.2.1

    The _xrealloc function in xlsp_xmalloc.c in OpenSLP 2.0.0 allows remote attackers to cause a denial of service (NULL pointer dereference and crash) via a large number of crafted packets, which triggers a memory allocation failure.

  • CVE-2016-7567CriJan 23, 2017
    affected < 2.0.0-18.2.1fixed 2.0.0-18.2.1

    Buffer overflow in the SLPFoldWhiteSpace function in common/slp_compare.c in OpenSLP 2.0 allows remote attackers to have unspecified impact via a crafted string.